Known Vulnerabilities for products from 1234n
Listed below are 20 of the newest known vulnerabilities associated with the vendor "1234n".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-15458 json | A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affects an unknown function of the file /mc-admin/post-edit.... | Not Provided | 2026-01-05 | 2026-04-29 |
| CVE-2025-15457 json | A vulnerability was found in bg5sbk MiniCMS up to 1.8. The impacted element is an unknown function of the file /minicms/mc-ad... | Not Provided | 2026-01-05 | 2026-04-29 |
| CVE-2025-15456 json | A vulnerability has been found in bg5sbk MiniCMS up to 1.8. The affected element is an unknown function of the file /mc-admin... | Not Provided | 2026-01-05 | 2026-04-29 |
| CVE-2025-15455 json | A flaw has been found in bg5sbk MiniCMS up to 1.8. Impacted is the function delete_page of the file /minicms/mc-admin/page.ph... | Not Provided | 2026-01-05 | 2026-04-29 |
| CVE-2023-46378 json | Stored Cross Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string ap... | 5.4 - MEDIUM | 2023-10-31 | 2023-11-08 |
| CVE-2022-33121 json | A Cross-Site Request Forgery (CSRF) in MiniCMS v1.11 allows attackers to arbitrarily delete local .dat files via clicking on ... | 8.1 - HIGH | 2022-06-24 | 2022-06-30 |
| CVE-2021-44970 json | MiniCMS v1.11 was discovered to contain a cross-site scripting (XSS) vulnerability via /mc-admin/page-edit.php. | 5.4 - MEDIUM | 2022-02-10 | 2022-02-16 |
| CVE-2021-41663 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-06-13 | 2022-06-27 |
| CVE-2021-33387 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.6 - CRITICAL | 2023-02-24 | 2023-03-06 |
| CVE-2020-36052 json | Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary ... | 9.8 - CRITICAL | 2021-01-05 | 2021-01-08 |
| CVE-2020-36051 json | Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote attackers to read arbitrary files via the s... | 7.5 - HIGH | 2021-01-05 | 2021-01-08 |
| CVE-2020-19896 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-06-28 | 2022-07-08 |
| CVE-2020-17999 json | Cross Site Scripting (XSS) in MiniCMS v1.10 allows remote attackers to execute arbitrary code by injecting commands via a cra... | 6.1 - MEDIUM | 2021-04-28 | 2021-05-05 |
| CVE-2019-13341 json | In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php (comment box), which can be used to get a user's cookie. | 4.8 - MEDIUM | 2019-07-05 | 2019-07-07 |
| CVE-2019-13340 json | In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's ... | 4.8 - MEDIUM | 2019-07-05 | 2019-07-07 |
| CVE-2019-13339 json | In MiniCMS V1.10, stored XSS was found in mc-admin/page-edit.php (content box), which can be used to get a user's cookie. | 4.8 - MEDIUM | 2019-07-05 | 2019-07-07 |
| CVE-2019-13186 json | In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's coo... | 6.1 - MEDIUM | 2019-07-03 | 2019-07-10 |
| CVE-2019-9603 json | MiniCMS 1.10 allows mc-admin/post.php?state=publish&delete= CSRF to delete articles, a different vulnerability than CVE-2018-... | 6.5 - MEDIUM | 2019-03-06 | 2019-03-07 |
| CVE-2018-1000638 json | MiniCMS version 1.1 contains a Cross Site Scripting (XSS) vulnerability in http://example.org/mc-admin/page.php?date={payload... | 6.1 - MEDIUM | 2018-08-20 | 2018-10-30 |
| CVE-2018-20520 json | MiniCMS V1.10 has XSS via the mc-admin/post-edit.php query string, a related issue to CVE-2018-10296 and CVE-2018-16233. | 6.1 - MEDIUM | 2018-12-27 | 2019-01-08 |
Known software with vulnerabilities from 1234n
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | 1234n | Minicms | 1.0 |